# is much like a local domain, execpt that the delivery location
# and allowed set of users is controlled by a virtual domain
# alias file and not /etc/passwd. Wildcards are permitted
-# rcpthosts - recipient hosts or relay domains. This is a list of
-# all hosts that we mail exchange for. All domains that list
-# this host in their MX records should be listed here. Wildcards
-# are permitted.
# relayhosts - Hostnames that can send any arbitarily addressed mail to
# us. This is primarily only usefull for emergancy 'queue
# flushing' operations, but should be populated with a list
# Domains we relay for; that is domains that aren't considered local but we
# accept mail for them.
-domainlist rcpthosts = partial-lsearch;/etc/exim4/rcpthosts
hostlist debianhosts = 127.0.0.1 : net-lsearch;/var/lib/misc/thishost/debianhosts
<%=
out = ""
{/var/lib/greylistd/whitelist-hosts}{}}
condition = ${if eq {$acl_m_prf}{PopconMail}{no}{yes}}
!authenticated = *
- domains = +handled_domains : +rcpthosts
+ domains = +handled_domains
condition = ${readsocket{/var/run/greylistd/socket}\
{--grey \
$sender_host_address \
!hosts = : +debianhosts : WHITELIST
condition = ${if eq {$acl_m_prf}{PopconMail}{no}{yes}}
!authenticated = *
- domains = +handled_domains : +rcpthosts
+ domains = +handled_domains
local_parts = GREYLIST_LOCAL_PARTS
set acl_m_pgr = request=smtpd_access_policy\n\
protocol_state=RCPT\n\
!hosts = : +debianhosts : WHITELIST
condition = ${if eq {$acl_m_prf}{PopconMail}{no}{yes}}
!authenticated = *
- domains = +handled_domains : +rcpthosts
+ domains = +handled_domains
local_parts = GREYLIST_LOCAL_PARTS
condition = ${if eq{${uc:${substr_0_7:$acl_m_pgr}}}{PREPEND}}
message = ${sg{$acl_m_pgr}{^\\\\w+\\\\s*}{}}
%>
accept local_parts = +postmasterish
- domains = +handled_domains : +rcpthosts
+ domains = +handled_domains
deny hosts = ${if exists{/etc/exim4/host_blacklist}{/etc/exim4/host_blacklist}{}}
message = I'm terribly sorry, but it seems you have been blacklisted
{${lookup{$local_part}lsearch*{${extract{directory}{VDOMAINDATA}{${value}/rbllist}}}{$value}{}}}{}}}\
{${lookup{$local_part}lsearch{/etc/exim4/rbllist}{$value}{}} : \
${lookup{$local_part}lsearch{/var/lib/misc/$primary_hostname/mail-rbl}{$value}{}}}}
- domains = +handled_domains : +rcpthosts
+ domains = +handled_domains
!hosts = +debianhosts : WHITELIST
'
end
{${expand:${lookup{$local_part}lsearch*{${extract{directory}{VDOMAINDATA}{${value}/rhsbllist}}}{$value}{}}}}{}}}\
{${expand:${lookup{$local_part}lsearch{/etc/exim4/rhsbllist}{$value}{}}} : \
${expand:${lookup{$local_part}lsearch{/var/lib/misc/$primary_hostname/mail-rhsbl}{$value}{}}}}}
- domains = +handled_domains : +rcpthosts
+ domains = +handled_domains
!hosts = +debianhosts : WHITELIST
<%=
out = ""
if nodeinfo['smarthost'].empty?
out = '
- deny domains = +handled_domains : +rcpthosts
+ deny domains = +handled_domains
local_parts = ${if match_domain{$domain}{+virtual_domains}\
{${if exists {${extract{directory}{VDOMAINDATA}{${value}/callout_users}}}\
{${lookup{$local_part}lsearch*{${extract{directory}{VDOMAINDATA}{${value}/callout_users}}}{$local_part}{}}}{}}}\
message = unknown user
verify = recipient/defer_ok
- accept domains = +rcpthosts
- endpass
- message = unrouteable address
- verify = recipient
-
accept hosts = +debianhosts
accept authenticated = *
projects / dsa-puppet.git / commitdiff